PANews May 8th news, according to X user @Xuegaogx, the GitHub open source repository t3rn-swap has been found to contain backdoor code, where users' input Private Keys will be silently sent to a specified ID via Telegram. The key backdoor is located in the recordconfig function. Project author @hao3313076 responded by saying "he has also been hacked", but the comment was sarcastically referred to as "too honest". The community calls for an immediate halt to the use of this script and to change the related Private Keys.

Odaily News Encryption KOL@Xuegaogx revealed that the t3rn script published by user @hao3313076 is suspected of having backdoor risks. Combined with the logic of private key input calls, it can silently send the user's private key via the Telegram API to the account with ID 5963704377. This function disguises as log output of configuration records to cover up the real behavior, and the actual content includes the plaintext private key.

Odaily News Encryption KOL @Xuegaogx disclosed that the t3rn script published by user @hao3313076 is suspected of having a backdoor risk. Combined with the logic of private key input calls, it can silently send the user's private key via the Telegram API to the account with ID 5963704377. This function disguises itself as a log output of configuration records to cover its true behavior, with the actual content containing the plaintext private key.